Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0921. PoCs published by f0bic.
AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Hassan Consulting Shopping Cart due to improper path validation in the $page variable. This allows an attacker to read arbitrary files by manipulating the URL path.
Description
Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.
Exploits (1)
The exploit describes a directory traversal vulnerability in Hassan Consulting Shopping Cart due to improper path validation in the $page variable. This allows an attacker to read arbitrary files by manipulating the URL path.